CVE-2023-42138

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 11, 2023

Updated: Oct 18, 2023

CWE ID 125

Summary

CVE-2023-42138 is a newly discovered vulnerability affecting KV STUDIO Ver. 11.62 and earlier, as well as KV REPLAY VIEWER Ver. 2.62 and earlier. This out-of-bounds read issue poses a significant risk, as it may allow an attacker to disclose sensitive information or execute arbitrary code. The vulnerability can be activated by having a user of KV STUDIO PLAYER open a specially crafted file, making it crucial for users to update their software to the latest versions as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sntauV
https://www.cve.org/CVERecord?id=CVE-2023-42138
https://nvd.nist.gov/vuln/detail/CVE-2023-42138

Back to Vulnerability Database

CVE-2023-42138

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations